53a3b5c6de2dfd1715a124dc5a19d043656e027931978079ec4fb16acbf6765d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

53a3b5c6de2dfd1715a124dc5a19d043656e027931978079ec4fb16acbf6765d
Size

43KB
MD5

00bee722a2176939fd6a9d4471c72ca1
SHA1

dd5e2ae912dafbcaab9cdba22f48e58800e690ea
SHA256

53a3b5c6de2dfd1715a124dc5a19d043656e027931978079ec4fb16acbf6765d
SHA512

3ada2b4f1309f87359e0ec5043d9b2455ad48359ff402a6ce486e898ece06f354aafdadeb4d6d81e098af0a11295e07a54cd7a53ae2e5b251942ab62bd59ca3e
SSDEEP

768:UpNTC+HwthwF7Sk4SeO2al0mHS0WasMxrUKBo4b2/9Q9fXmXHD:6Nu+LSqeOUmHn3ed4b2/SxXmXHD

Score

8^/10

upx

Malware Config

Signatures

UPX packed file 1 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
sample	upx

Files

53a3b5c6de2dfd1715a124dc5a19d043656e027931978079ec4fb16acbf6765d
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

UPX0
Size: - Virtual size: 72KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

UPX1
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
out.upx
.exe windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ